Route Origin Authorization
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa
File: 326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa (raw, json)
Hash identifier: vnwRKCsPU+khIK1Zb068/T8vTYhUnLI0jo4cXfzu2VI=
Subject key identifier: 33:0F:20:72:3E:8C:45:15:73:3A:CE:E6:3A:4A:EF:DA:85:E1:94:97
Certificate issuer: /CN=20595BDBAD09C7D604202305854D1DF14F190959
Certificate serial: 26A9874AEC8C612A189C8AECE0D23643A740AF31
Authority key identifier: 20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
Authority info access: rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa
Signing time: Sun 15 Sep 2024 14:36:42 +0000
ROA not before: Sun 15 Sep 2024 14:31:42 +0000
ROA not after: Sun 14 Sep 2025 14:36:42 +0000
asID: 216052
IP address blocks: 2a06:1283:b120::/44 maxlen: 44
Validation: OK
Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl
rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.mft
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.crl
rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/799438F1B1762AEEF8A35CF4E6CBAE97699BD020.mft
rsync://rpki.ripe.net/repository/DEFAULT/eZQ48bF2Ku74o1z05suul2mb0CA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 17:52:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:a9:87:4a:ec:8c:61:2a:18:9c:8a:ec:e0:d2:36:43:a7:40:af:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20595BDBAD09C7D604202305854D1DF14F190959
Validity
Not Before: Sep 15 14:31:42 2024 GMT
Not After : Sep 14 14:36:42 2025 GMT
Subject: CN=330F20723E8C4515733ACEE63A4AEFDA85E19497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:7b:74:ea:f4:0c:74:25:d5:42:ec:1e:06:f3:
d6:ac:d8:79:05:a3:27:98:65:1d:b4:ab:12:fe:2b:
b2:55:d6:2e:d8:bd:d7:e6:1d:82:e3:f6:13:4e:89:
d8:cd:e5:82:bc:30:9a:e4:3f:98:cb:66:4a:f4:59:
0d:9a:6c:f3:02:5b:d6:5f:7a:38:c6:60:dc:32:c4:
da:f7:49:0c:73:68:38:09:65:54:46:7c:74:0a:6b:
9e:c5:18:b9:ec:a6:54:a6:9a:cd:b9:be:f6:25:11:
19:27:e7:5a:0b:55:85:93:91:5d:43:25:29:45:f8:
bf:5a:20:fa:3c:c1:3e:a2:06:82:40:ca:d9:6f:a4:
bd:2c:b2:94:ec:8c:bf:ac:79:34:0b:49:2d:5c:37:
6e:2e:37:a0:20:d2:48:2b:cb:2f:77:be:e9:d2:ce:
05:d4:0b:a5:65:ad:fa:75:0c:f6:ce:50:b1:7e:29:
28:7e:75:0c:4d:72:67:15:b6:cc:b0:2a:1b:80:b8:
cb:e7:26:52:a5:1b:4f:55:cf:cf:5d:f2:0a:51:b1:
4b:9e:dc:2d:5f:52:b2:d7:67:ff:df:b4:0b:4d:fd:
cf:13:6b:48:91:d9:f7:8f:76:ad:70:a5:95:dd:e5:
3e:5b:2d:87:0b:69:c0:12:d5:68:3b:64:af:9e:1f:
7e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0F:20:72:3E:8C:45:15:73:3A:CE:E6:3A:4A:EF:DA:85:E1:94:97
X509v3 Authority Key Identifier:
keyid:20:59:5B:DB:AD:09:C7:D6:04:20:23:05:85:4D:1D:F1:4F:19:09:59
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/20595BDBAD09C7D604202305854D1DF14F190959.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/20595BDBAD09C7D604202305854D1DF14F190959.cer
Subject Information Access:
Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2af73a9c-2058-43bb-9ac6-5ab42dfbf409/1/326130363a313238333a623132303a3a2f34342d3434203d3e20323136303532.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a06:1283:b120::/44
Signature Algorithm: sha256WithRSAEncryption
1d:cb:a5:0a:22:bf:ff:92:1c:44:bc:ba:cd:96:ea:ca:5f:15:
7e:a5:f6:76:aa:de:1f:47:79:ea:e7:6a:7a:11:0e:a7:f6:ea:
8f:b3:fb:ae:7e:5b:3b:6a:40:92:79:b9:d7:d5:aa:c0:11:fb:
ca:a7:46:69:a5:ee:e3:50:18:ff:54:39:2a:5a:31:0f:66:71:
90:8f:db:99:d4:b9:41:bf:a9:50:b7:9a:87:52:d5:96:e1:4f:
af:54:94:33:a8:64:2a:e1:ad:1f:d1:38:bf:0a:7e:e5:f6:7a:
79:1c:81:69:b6:cb:6d:11:33:57:ca:af:28:57:a6:e9:6e:d6:
e8:ca:bb:5e:79:66:b8:b1:25:92:b2:a7:20:6b:d5:12:d1:c9:
6e:13:90:a6:9d:83:7c:b2:e1:5d:c4:63:34:cc:0b:02:8d:87:
90:40:de:ae:ed:6a:8d:f3:ee:23:a2:a2:9d:c9:22:e4:0a:49:
fc:aa:21:f3:a3:b2:44:b2:07:ab:4f:aa:75:49:78:db:27:a8:
65:04:f4:16:01:31:09:46:48:70:d0:79:34:c3:b1:ea:86:3d:
f5:2a:3e:5d:f6:22:1a:b6:bf:fb:34:e4:1f:ac:6d:36:37:3d:
17:ea:56:a8:d3:1a:cc:90:6d:d4:de:ee:a7:ba:23:93:2c:42:
d7:d5:b5:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 09:08:46 2025 by rpki-client